From owner-freebsd-stable Fri Apr 19 10:56:36 2002 Delivered-To: freebsd-stable@freebsd.org Received: from tinker.exit.com (tinker.exit.com [206.223.0.1]) by hub.freebsd.org (Postfix) with ESMTP id 723DB37B416 for ; Fri, 19 Apr 2002 10:56:29 -0700 (PDT) Received: from realtime.exit.com (realtime [206.223.0.5]) by tinker.exit.com (8.12.3/8.12.3) with ESMTP id g3JHuScN060601 for ; Fri, 19 Apr 2002 10:56:28 -0700 (PDT) (envelope-from frank@exit.com) Received: from realtime.exit.com (localhost [127.0.0.1]) by realtime.exit.com (8.12.2/8.12.2) with ESMTP id g3JHuATV001637 for ; Fri, 19 Apr 2002 10:56:10 -0700 (PDT) (envelope-from frank@realtime.exit.com) Received: (from frank@localhost) by realtime.exit.com (8.12.2/8.12.2/Submit) id g3JHuAKW001636 for stable@freebsd.org; Fri, 19 Apr 2002 10:56:10 -0700 (PDT) From: Frank Mayhar Message-Id: <200204191756.g3JHuAKW001636@realtime.exit.com> Subject: Inetd not-starting gotcha. To: stable@freebsd.org Date: Fri, 19 Apr 2002 10:56:10 -0700 (PDT) Reply-To: frank@exit.com Organization: Exit Consulting X-Copyright0: Copyright 2002 Frank Mayhar. All Rights Reserved. X-Copyright1: Permission granted for electronic reproduction as Usenet News or email only. X-Mailer: ELM [version 2.4ME+ PL95a (25)] MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Type: text/plain; charset=US-ASCII Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG Just looked through the logs and found this: ---------------------------- revision 1.71 date: 2000/07/28 22:45:36; author: eivind; state: Exp; lines: +4 -4 Change the defaults for portmap, sendmail and inetd to be not running them. Make sysinstall override this on install, so the effective behavioural change for a newly installed system is null. Overall, this makes a system with an empty /etc/rc.conf not run any network services, and makes the FreeBSD-provided network services that are running visible in /etc/rc.conf (instead of making people look through /etc/defaults/rc.conf to find the things they need to disable to secure the system.) Reviewed by: jhb Discussed with: The usual cabal ---------------------------- So the original change went into -current on 7/28/2000, but I also found this: ---------------------------- revision 1.53.2.53 date: 2002/04/15 00:44:14; author: dougb; state: Exp; lines: +18 -18 MFC en masse. Several of the included changes are mine, however we've gotten pretty far out of synch with -current over the last year or so, this catches us up for everything that makes sense. There are several whitespace only changes here. In an ideal world I would have had time to seperate them out, however I did not. Most of them are included to be consistent with -current, some of them are "improvements" that happened while I was adding things back. Of particular note: /var/log/auth.log /var/run and /var/spool cleanup in rc Early and late rc.sysctl runs New mailq/queurun support in daily scripts ---------------------------- This change _did_ deserve a heads-up, at least to -stable. Sigh. -- Frank Mayhar frank@exit.com http://www.exit.com/ Exit Consulting http://www.gpsclock.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message